2 Replies Latest reply on Mar 27, 2012 2:03 AM by Alessio Soldano

    Was CVE-2011-1483 fixed in JBoss AS 6?

    Rajesh Vadivelu Newbie

      We are using community version of JBoss AS 6. We would like to know whether the DoS vulnerability CVE-2011-1483 was fixed in this version.

       

      Bug 692584 - (CVE-2011-1483) CVE-2011-1483 JBossWS remote Denial of Service

       

      In https://bugzilla.redhat.com/show_bug.cgi?id=692584, I was able to see the list of jboss application packages that has the fix.

      All concerned commercial packages are listed.

       

      Do we have a place where we can check whether this vulnerability was fixed in JBoss AS 6 or yet to be fixed.

       

      - Thanks,

      Rajesh.